cvedb.io
CVE-2024-43410
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2024-08-21T16:15:08.373 · Last modified 2026-06-17T07:50:59.550

Summary

Russh is a Rust SSH client & server library. Allocating an untrusted amount of memory allows any unauthenticated user to OOM a russh server. An SSH packet consists of a 4-byte big-endian length, followed by a byte stream of this length. After parsing and potentially decrypting the 4-byte length, russh allocates enough memory for this bytestream, as a performance optimization to avoid reallocations later. But this length is entirely untrusted and can be set to any value by the client, causing this much memory to be allocated, which will cause the process to OOM within a few such requests. This vulnerability is fixed in 0.44.1.

Affected products

russh_project — russh

Does this affect you?

Add your gear to cvedb and we'll alert you only when russh_project ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.